3billion

PRIVACY POLICY

Version [2.0]


Last Updated Date: January 2, 2023

3billion (“we” or “our”) is the provider of the Service and is engaged in the development of various genetic and biochemical tests and analyses. In order to provide the Service, 3billion must process certain personal information or data. Such personal information or data is collected and passed to 3billion by the Patient’s Authorized Healthcare Provider and/or the Medical and Healthcare Organization (Patients (individuals), Authorized Healthcare Provider (individuals), and Medical and Healthcare Organization (individuals/entities) collectively “you” or “your”). Capitalized terms used but not defined in this Privacy Policy have the meaning given to them in the Terms and Conditions or Terms of Use. Your use of the Service, the Website and your personal information is subject to the privacy related laws and regulations of the Republic of Korea, where 3billion’s principal place of business is located.

1. PURPOSE

This Privacy Policy explains your personal information or data that 3billion gathers from your use of the Service and the Website (including our Portal), how we use, disclose, and protect it, your choices, and some other important information. Before using the Service and the Website, you must review and agree to 3billion’s Terms and Conditions, Term of Use, Test Requisition Form (applicable to Authorized Healthcare Provider and Medical and Healthcare Organizations), and Informed Consent.

2. INFORMATION 3BILLION COLLECTS AND PROCESSES

The categories and purposes of information we collect and process include :

3. HOW 3BILLION USES THIS INFORMATION

In general, we use the information that we collect to provide the Service, to help improve our Service and user experiences, and to help advance genetic research and science. Specifically, we may use the information as follows :

To provide the Service.

To set up your 3billion Account; send you the Sample collection kits; validate, confirm, verify, deliver, install, and track your Order including to arrange for shipping, handle returns and refunds, maintain a record of the order you make; collect payment for the Service you ordered; and analyze the Sample to produce the Report. As part of the Service, we may also periodically review your information to determine if any updates or changes to your Report are required.

To communicate with you.

Remind you about submitting the Sample, respond to your inquiries, discuss your Report, follow up if there is an issue with the Sample or the Service, and provide information about or request feedback on the Report.

To help us improve the Service and develop new tests and services.

For marketing purposes.

Research use.

Considering the importance of genetic and health information in research, we use your information and data without any personal identification for further analysis.

4. HOW INFORMATION IS SHARED WITH THIRD PARTIES

This section describes the circumstances under which we may share your information with third parties. Transfer of your information to a third party only takes place with either explicit consent, in order to fulfill legal obligation or if such transfer is permitted by law. In this regard, please be informed that third party service providers have been carefully selected are contractually bound to comply with this Privacy Policy and the Applicable Laws and subject to our instructions and to regular monitoring. Based on the foregoing, we share your information :

To provide the Service.

We work with third party service providers to provide Website, application development, analytics, variant analysis, payment processing, hosting, maintenance, transmission of the Report, collection of the Sample, and other services for us. We limit the personal, health, and non-personal information we share with these service providers to that which is minimally necessary for them to perform their services for us, and we require them to agree to maintain the confidentiality and security of such information.

For 3billion’s purposes.

For security or legal purposes.

5. COOKIES AND THIRD-PARTY DIGITAL SERVICES

6. RETENTION PERIOD

Unless otherwise stated below, we store the information only for as long as necessary to fulfil our contractual or legal obligations. However, we are required to store certain information or data longer for statutory reasons. In particular, with regard to Patient files including personal data (biochemical, health and genetic) - once a report for a genetic testing was provided to the Patient’s Authorized Healthcare Provider – we are obliged to store the Patient file for a mandatory period of 10 years.

Records relating to the Service :

Records relating to the operation of the Service :

In addition, we are obliged to store certain information for a mandatory period from 2 to 10 years under the Applicable Laws. Furthermore, we store certain information for the purpose of evidence in civil claims.

7. HOW 3BILLION PROTECTS YOUR INFORMATION

3billion complies with the Personal Information Protection Act; the Act on Promotion of Information and Communications Network Utilization and Information Protection, etc.; the Act on the Use and Protection of Credit Information; the Act on the Protection, Use, etc. of Location Information; the Act on the Development of Cloud Computing and the Protection of its Users; the Framework Act on Electronic Documents and Transactions; the Electronic Signature Act; the Smart Grid Construction and Utilization Promotion Act; the Medical Service Act; and so on (the “Applicable Laws”). Furthermore, personal information protection guidelines established by the Korean government to maintain the privacy and security of your personal information. If a breach occurs that may have compromised the privacy or security of your personal information, we will let you know promptly. We will follow the duties and privacy practices described in this Privacy Policy, the Terms and Conditions, the Terms of Service, and the Informed Consent.

Furthermore, we use physical, managerial, and technical safeguards that are designed to improve the integrity and security of your information. All information on our servers is encrypted when it is at rest or in transit. All personal information (genetic or otherwise) is encrypted when it’s stored on our servers. Internally, strict guidelines and access controls protect your personal information that is in accordance with 3billion’s Data Management (October 1, 2021), Quality Management Manual (October 1, 2021), and Operation Manual (October 1, 2021).

We take precautions as set forth by periodic security risk assessment by implementing administrative, physical, and technical safeguards. However, we cannot ensure or warrant the security of any information in the event of a breach of any of our safeguards. You submit your information at your own risk. 3billion is not liable for the unauthorized release of your information unless such release was the result of gross negligence or willful misconduct on the part of 3billion.

8. HOW 3BILLION DESTRUCTS YOUR INFORMATION

In principle, the information is destroyed without delay when the purpose of collecting, processing and using such personal information is achieved. The information entered by ordering the Service is transferred to a separate data base after the purpose is achieved (in case of paper, a separate filing box) and is stored for a certain period of time in accordance with the Privacy Policy and the Applicable Laws (refer to the retention and use period) and then destroyed.

9. YOUR RIGHTS TO YOUR INFORMATION

3billion would like to make sure you are fully aware of all of your information protection rights. Every user of our Service and the Website is entitled to the following :

The right to access :

The right to rectification :

The right to erasure :

The right to restrict processing :

The right to object to processing :

The right to data portability :

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at our email: support@3billion.io

10. YOUR CHOICES

If you receive marketing emails from us, you can unsubscribe from that particular type of marketing email by following the instructions contained within the email or sending your request to us by email at support@3billion.io Please be aware that if you opt out of receiving marketing emails from us or otherwise modify the nature or frequency of marketing communications you receive from us, it may take up to thirty (30) calendar days for us to process your request, during which time you might receive marketing communications from us that you have already opted out from.

11. CHILDREN’S PRIVACY

Do not use or access any part of the Website or the Service if you are under 18 years of age. If you’re a parent or guardian and discover that your child under 18 has obtained an Account on the Website, please alert us promptly at support@3billion.io so we can take action to prevent access.

12. INTERNATIONAL USERS

The Service and our Website are hosted in Korea. If you choose to use the Service and our Website from other regions of the world, then by your use of the Service and our Website you acknowledge and agree that: (i) you are transferring your personal information outside of those regions to Korea for our Service as required for us to perform our contractual obligations to you; (ii) the laws and regulations of Korea shall govern your use of the Service and the Website, and may differ from those of your country of residence; and (iii) as per your submission of the Test Requisition Form and acceptance of the Informed Consent, you permit the Patient’s and your personal information to be used for the purposes set forth therein. We will retain your personal information only for as long as is necessary to carry out the function for which the information is being used, as consented by you in the Informed Consent, and to comply with applicable laws and regulations. By providing the Sample, you are not violating any export ban or other legal restriction in the country of your residence.

Certain Clients who live outside of Korea in certain jurisdictions may have the option of requesting that their personal information be accessed, updated, and/or removed at any time from our active databases, subject to the applicable laws and regulations of such jurisdictions. Such Clients may also have the right to object to our processing of their personal information and/or request that we provide their personal information to another third party. We may require that such request be provided in writing, subject to applicable laws and regulations with respect to the transfer of the Sample or information require for the Service. If you would like to access, update, object to processing, request provision to a third party, and/or request removal from our active database of your personal information, please contact us at support@3billion.io Any such requests will be honored within thirty (30) calendar days.

With respect to requests to remove or stop the processing of personal information, such requests received prior to initiation of the Service will result in a cancellation of the Service, and no Report will be provided to you. Please also refer to the section above entitled “Your Choices” to understand how requests to remove personal information are handled.

If you are a resident of California (CA), you are granted specific rights regarding access to your personal information under the California Online Privacy Protection Act and California Civil Code Section 1798.83. If you are a CA resident and would like to make such a request, please submit your request in writing to us using the contact information provided below.

If you are a resident of the European Economic Area (EEA), you have certain data protection rights under the General Data Protection Regulation (GDPR). If you are an EEA resident and would like to make such a request, please submit your request in writing to us using the contact information provided below.

13. CHANGES AND UPDATES TO THIS POLICY

Please revisit this page periodically to stay aware of any changes to this Privacy Policy, which we may update from time to time. If we modify the Privacy Policy, we’ll make it available through the Website, and indicate the date of the latest revision. In the event that the modifications materially alter your rights or obligations hereunder, we will make reasonable efforts to notify you of this change. Your continued use of the Service and the Website after the revised Privacy Policy becomes effective indicates that you have read, understood and agreed to the current version of the Privacy Policy.

14. OUR PRIVACY OFFICER AND CONTACT INFORMATION

3billion Privacy Officer : Changwon Keum (070-4855-1010)

Please contact us with any questions or comments about this Privacy Policy, your personal information, our use and disclosure practices, or your consent choices by email at support@3billion.io